Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/E4AFFF3AD33511EF9B1DD19B762E951A.roa
File: E4AFFF3AD33511EF9B1DD19B762E951A.roa (raw, json)
Hash identifier: lB8MuBPzsplRW3H03sn2BGnMhCA81xkuwP6M5SFP/LY=
Subject key identifier: 4D:7A:E8:BE:F1:DE:13:01:45:9C:95:84:7E:25:64:FC:2F:1B:DA:D9
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0540
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/E4AFFF3AD33511EF9B1DD19B762E951A.roa
Signing time: Wed 15 Jan 2025 11:43:09 +0000
ROA not before: Wed 15 Jan 2025 11:43:06 +0000
ROA not after: Thu 15 Jan 2026 11:43:06 +0000
asID: 53356
IP address blocks: 102.135.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1344 (0x540)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF
Validity
Not Before: Jan 15 11:43:06 2025 GMT
Not After : Jan 15 11:43:06 2026 GMT
Subject: CN=67879f4d-cd85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:d9:8d:b3:00:c3:a3:8e:86:f9:9e:9a:7d:65:
a6:50:46:6e:6d:96:43:a4:55:ce:a0:37:0d:20:ff:
40:df:a1:73:f9:56:82:12:98:aa:60:5c:e1:70:cb:
34:15:d2:41:42:7d:a8:f3:2f:85:b4:fe:9c:38:65:
6d:b3:2a:f4:e6:9e:b3:66:0f:34:82:0d:70:22:d3:
a4:52:40:b3:41:2a:d8:ae:61:1f:e5:65:07:5e:67:
77:a8:28:4b:07:0b:5a:27:c0:44:8e:c6:1c:eb:b8:
20:41:40:87:44:0f:9f:b7:18:d2:75:32:12:e8:e8:
10:ee:12:91:5d:20:cd:82:84:41:77:c6:8b:57:7f:
79:ce:a2:43:36:fc:99:58:0c:14:a4:59:2c:94:7a:
ec:d1:42:0d:ac:42:63:be:0f:9b:68:91:44:33:17:
1f:20:4b:ee:52:2e:51:4a:d8:78:02:2e:55:e9:db:
a1:8b:84:be:80:06:57:61:91:43:fc:e1:4f:3a:b9:
06:29:07:2d:c1:11:fd:8a:8f:fb:1b:78:ea:3a:a5:
7b:f5:3a:c0:42:ff:98:d0:2c:49:15:b0:88:0d:8c:
e2:c4:b2:33:00:cf:10:60:8c:36:ab:d1:61:b4:d1:
04:08:db:c6:5b:83:2d:0d:f1:42:e6:0e:92:b5:64:
c9:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:7A:E8:BE:F1:DE:13:01:45:9C:95:84:7E:25:64:FC:2F:1B:DA:D9
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/E4AFFF3AD33511EF9B1DD19B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.37.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:fe:7b:8a:cb:6c:4c:5b:4c:dc:96:60:4b:69:04:ef:5c:8d:
97:1c:ec:d1:d6:70:a9:e6:b1:95:4d:30:3c:c3:b3:6c:d8:77:
71:f0:3f:47:4d:24:26:17:d7:d5:4b:8f:5a:ba:57:2b:e7:4f:
ab:14:a8:f5:b5:75:93:9c:c6:16:d4:12:50:5f:76:9d:79:8c:
dd:87:a5:ef:3f:6b:e9:c5:5d:81:fb:31:43:2a:bd:c1:e2:a0:
a5:1e:e2:fd:86:e5:d1:5b:3c:5a:f2:93:d3:49:8c:b4:fd:fa:
c0:7b:eb:be:76:22:09:5e:4f:17:5e:66:5c:b1:d0:ef:09:95:
74:d5:63:db:a4:7c:0a:39:b0:03:e3:58:20:b4:72:40:ab:89:
04:8f:72:31:ab:2f:6d:23:d7:a9:07:2b:41:8d:ed:82:ba:12:
da:8a:8d:12:0a:8e:2e:81:3a:0a:97:48:55:8a:f8:1f:8c:a4:
7c:d9:70:bd:6b:d6:bc:72:c8:b0:18:1e:10:60:14:2a:25:bb:
de:49:84:c3:71:74:78:b5:32:d5:98:63:a4:e0:af:da:35:9d:
12:e5:ef:17:70:3d:bd:93:b6:68:00:97:89:07:19:3f:31:11:
65:cf:48:fb:38:73:84:81:5a:ca:8f:54:fa:9c:0d:ea:98:5e:
fd:06:90:a3
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBUAwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
M0JBMTlBRjExMC8GA1UEBRMoNkFFQTI0QjA5OUMzMkIyMkU0RTQ4QkI5RjI2Q0Y1
NzhCRUY2QkZGMzAeFw0yNTAxMTUxMTQzMDZaFw0yNjAxMTUxMTQzMDZaMBgxFjAU
BgNVBAMTDTY3ODc5ZjRkLWNkODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDU2Y2zAMOjjob5npp9ZaZQRm5tlkOkVc6gNw0g/0DfoXP5VoISmKpgXOFw
yzQV0kFCfajzL4W0/pw4ZW2zKvTmnrNmDzSCDXAi06RSQLNBKtiuYR/lZQdeZ3eo
KEsHC1onwESOxhzruCBBQIdED5+3GNJ1MhLo6BDuEpFdIM2ChEF3xotXf3nOokM2
/JlYDBSkWSyUeuzRQg2sQmO+D5tokUQzFx8gS+5SLlFK2HgCLlXp26GLhL6ABldh
kUP84U86uQYpBy3BEf2Kj/sbeOo6pXv1OsBC/5jQLEkVsIgNjOLEsjMAzxBgjDar
0WG00QQI28Zbgy0N8ULmDpK1ZMm7AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUTXro
vvHeEwFFnJWEfiVk/C8b2tkwHwYDVR0jBBgwFoAUauoksJnDKyLk5Iu58mz1eL72
v/MwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVBNDBENTc3L2F1b2tz
Sm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2F1b2tzSm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVB
NDBENTc3L0U0QUZGRjNBRDMzNTExRUY5QjFERDE5Qjc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmhyUwDQYJKoZIhvcNAQEL
BQADggEBALn+e4rLbExbTNyWYEtpBO9cjZcc7NHWcKnmsZVNMDzDs2zYd3HwP0dN
JCYX19VLj1q6VyvnT6sUqPW1dZOcxhbUElBfdp15jN2Hpe8/a+nFXYH7MUMqvcHi
oKUe4v2G5dFbPFryk9NJjLT9+sB76752IgleTxdeZlyx0O8JlXTVY9ukfAo5sAPj
WCC0ckCriQSPcjGrL20j16kHK0GN7YK6EtqKjRIKji6BOgqXSFWK+B+MpHzZcL1r
1rxyyLAYHhBgFColu95JhMNxdHi1MtWYY6Tgr9o1nRLl7xdwPb2TtmgAl4kHGT8x
EWXPSPs4c4SBWsqPVPqcDeqYXv0GkKM=
-----END CERTIFICATE-----
Generated at Sat Apr 5 10:36:48 2025 by rpki-client